Merge pull request #6120 from embhorn/zd15698

Fix NULL dereference in TLSX_CSR_Parse
2025-08-03 20:54:41 +02:00 · 2023-02-22 13:43:43 -08:00
parent b81759173a 0a928208f2
commit 2e7713f4c2
1 changed files with 4 additions and 0 deletions
--- a/src/tls.c
+++ b/src/tls.c
@@ -3218,6 +3218,10 @@ static int TLSX_CSR_Parse(WOLFSSL* ssl, const byte* input, word16 length,

    #if defined(WOLFSSL_TLS13)
        if (ssl->options.tls1_3) {
+            if (ssl->buffers.certificate == NULL) {
+                WOLFSSL_MSG("Certificate buffer not set!");
+                return BUFFER_ERROR;
+            }
            cert = (DecodedCert*)XMALLOC(sizeof(DecodedCert), ssl->heap,
                                         DYNAMIC_TYPE_DCERT);
            if (cert == NULL) {